Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
File: 5ZAclsdH6RYsrv5QFArlMhsjxXw.mft (raw, json)
Hash identifier: zA+/IppgrK5WnubO7Xxi+0CnJHlgiAsW7cy95p7NIt4=
Subject key identifier: 70:49:F9:F3:C9:63:CD:95:D8:1E:C7:7A:A7:A2:71:34:07:45:5F:11
Authority key identifier: E5:90:1C:96:C7:47:E9:16:2C:AE:FE:50:14:0A:E5:32:1B:23:C5:7C
Certificate issuer: /CN=e5901c96c747e9162caefe50140ae5321b23c57c
Certificate serial: 019A71B825FC77E78753DB3945019DBB1977
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
Manifest number: 0269
Signing time: Tue 11 Nov 2025 07:01:24 +0000
Manifest this update: Tue 11 Nov 2025 07:01:24 +0000
Manifest next update: Wed 12 Nov 2025 07:01:24 +0000
Files and hashes: 1: 5ZAclsdH6RYsrv5QFArlMhsjxXw.crl (hash: ml+SuVXX4H/oSj6uAEOv69zdT9g2QvNbu3s7jrCI2Ac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:25:fc:77:e7:87:53:db:39:45:01:9d:bb:19:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5901c96c747e9162caefe50140ae5321b23c57c
Validity
Not Before: Nov 11 07:01:24 2025 GMT
Not After : Nov 12 07:01:24 2025 GMT
Subject: CN=7049f9f3c963cd95d81ec77aa7a2713407455f11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:82:d0:ea:ec:d8:25:ea:18:b2:de:97:1f:b1:
35:ff:cc:06:09:5a:7e:37:60:90:fc:76:65:9e:4c:
10:b5:d1:2d:5a:dd:7e:02:4d:46:fe:8f:a5:54:05:
b7:be:ab:86:65:cc:b0:47:a6:06:f1:7c:2f:9f:82:
24:b2:c3:08:4f:32:e0:63:ad:d4:35:f3:3f:49:11:
63:17:c4:98:d6:83:e3:b7:0f:41:08:21:39:94:be:
21:0e:61:4e:40:9b:31:c7:c0:29:b9:09:2f:44:f7:
5e:f7:38:8a:cb:af:27:ef:87:45:4d:50:70:d5:04:
21:e9:98:bd:77:d4:ec:07:a4:5a:6e:31:0a:39:30:
07:d0:5a:bc:e1:eb:86:d3:ba:fc:12:2c:32:f8:fe:
17:22:dc:e9:d3:07:d8:2c:a5:6d:ec:de:92:f9:05:
c9:9c:01:e4:db:09:b8:33:02:3d:24:1e:c5:55:95:
71:88:ba:60:3a:26:9d:71:30:7d:04:fa:4b:da:96:
bf:5d:b0:5d:a1:a4:54:d9:2e:94:d0:78:9f:b9:01:
4a:7e:31:d7:19:43:70:24:70:77:0f:9e:56:b5:9c:
9b:00:f2:78:2d:80:3b:83:32:b7:3c:77:bd:79:e7:
b7:67:69:3d:62:d4:ab:06:65:22:cf:5b:4e:cc:cc:
db:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:49:F9:F3:C9:63:CD:95:D8:1E:C7:7A:A7:A2:71:34:07:45:5F:11
X509v3 Authority Key Identifier:
keyid:E5:90:1C:96:C7:47:E9:16:2C:AE:FE:50:14:0A:E5:32:1B:23:C5:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:7a:32:8b:1a:9c:98:bc:c1:88:03:87:a7:a7:bc:d7:af:21:
20:a6:2f:e8:e9:8b:1c:6f:a5:b8:6d:21:db:23:e0:10:37:79:
ea:24:13:0d:7f:40:3f:ac:55:f5:70:ec:7e:39:3c:20:86:2e:
c1:57:c1:9e:3d:90:de:30:9a:2c:2c:cb:39:7e:9c:1a:3b:35:
bf:e7:29:e4:ea:42:6e:a6:ae:f9:11:09:32:86:9b:85:3d:cf:
4f:c0:88:51:83:22:f2:3f:52:a4:90:f0:3e:0d:9d:7a:20:06:
f0:d8:e3:ea:e3:8a:d1:37:1c:68:98:e5:64:af:3a:39:f9:79:
e8:a2:76:02:28:76:d7:ce:95:89:d5:1b:77:ca:87:60:b5:4f:
7d:27:e1:74:11:58:df:af:7a:d3:44:25:dd:92:be:a2:cc:d2:
08:25:d2:b3:0f:90:f0:e6:ad:b3:0b:bc:e4:52:19:aa:9a:76:
dd:87:30:40:69:16:27:fa:98:f0:69:b3:cc:85:a9:76:80:1e:
07:ed:80:2b:86:d0:19:b4:e6:96:9d:f7:3c:52:48:ea:c4:d3:
7d:f0:f7:e9:5d:69:52:aa:52:9d:d4:a6:88:31:b8:ff:12:ef:
7d:a3:9e:57:10:7e:81:13:e6:96:66:1f:4a:75:3c:f5:80:92:
cc:b2:66:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:00:53 2025 by rpki-client